An anonymous wallet spent $4.4 million buying BONK tokens over two days, then used that stash to push through a governance vote that allowed it to drain $21.2 million from the BonkDAO treasury.
The incident, which saw the attacker walk away with a $16.8 million profit, has split the crypto community between those calling it a theft and those insisting the DAO did exactly what it was built to do.
According to blockchain analytics platform Lookonchain, preparations for the theft started on June 30 when the attacker filed a proposal asking BonkDAO to move 4.426 trillion BONK, worth about $21.2 million, to a wallet they controlled. To pass, the proposal had to be supported by at least 1% of the BONK supply, which, per data from CoinGecko, stands at just under 88 trillion tokens.
Then, from around July 4, they bought 882.285 billion BONK on Bybit and Binance, an amount that was just enough to clear the 1% requirement (879.95 billion) to make a quorum that could vote on the proposal they’d made at the end of June. They then proceeded to vote “yes” with all 882.285 billion BONK, passing the proposal, after which 4.426 trillion tokens were transferred to their wallet.
Another company that follows on-chain movements, Chainalysis, corroborated Lookonchain’s account of the incident, saying the attacker acquired their tokens between July 4 and 5, buying some from the mainstream exchanges and borrowing others through DeFi platforms.
About 9 hours after voting their way to the $21 million stash, Chainalysis says the attacker sent $188,000 to OKX (Peckshield puts that figure at $148,000) while putting the rest in a new DAO, “BONK 2.0,” that they created to govern the stolen funds. According to the analytics firm, the new DAO is controlled by the malicious voter, the exploiter wallet, and a third wallet said to have financial ties to the voter wallet.
BonkDAO confirmed the treasury loss in a statement posted on X, saying it had identified the exchange wallets that had been used to acquire the voting tokens before the proposal succeeded and that it had notified law enforcement while also coordinating with exchanges, bridges, and the Solana Foundation to “manage the situation.”
Following news of the theft, the BONK token lost some of its value, with CoinGecko showing it trading around $0.00000438 at the time of writing, a 7.4% drop in 24 hours but still up nearly 5% on the week.
The event continues a streak reported recently by CryptoRank that has seen DeFi platforms lose nearly $1 billion to bad actors so far this year.
But no
小靓分析:
🦊 小靓解读
BONK 这起 2120 万美元的国库资金被盗事件,本质是 DAO 治理机制的致命漏洞:攻击者仅花 440 万美元买入代币,就轻松控制了 1% 的投票权,合法地从国库掏走资金并获利 1680 万美元。这暴露了低门槛治理提案在 MEME 币类项目中的巨大风险。
📊 市场影响
短期来看,BONK 价格可能承压,社区信任受损会引发抛售压力;中长期看,若项目方不修复治理门槛(如提高投票权重或增加时间锁),类似攻击可能重演,BONK 的叙事将从“社区驱动”转向“治理漏洞”阴影。
💡 操作建议
建议持有或关注 BONK 的交易者暂时观望,等待官方对治理机制的修复公告;若价格因恐慌出现超跌(如跌破 0.00003 美元区间),可轻仓博弈反弹,但需严格止损,毕竟治理风险未消除前,抄底如同接飞刀。
风险提示:
该资讯来源于公开渠道,仅供参考。Traceless 无痕智盈平台不对此信息准确性做任何保证。